Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
196971	4.3	警告 Network	IBM	-	IBM Kenexa LMS on Cloud における認証されたユーザに対する応答において秘密の質問の解答を公開される脆弱性	CWE-200 情報漏えい	CVE-2016-6122	2017-02-21 16:28	2016-11-11	Show	GitHub Exploit DB Packet Storm

196972	8.8	重要 Network	IBM	-	IBM Kenexa LCMS Premier on Cloud における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-5952	2017-02-21 16:26	2016-10-12	Show	GitHub Exploit DB Packet Storm

196973	5.4	警告 Network	IBM	-	IBM Kenexa LCMS Premier on Cloud におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5951	2017-02-21 16:26	2016-11-17	Show	GitHub Exploit DB Packet Storm

196974	8.8	重要 Network	IBM	-	IBM Kenexa LCMS Premier on Cloud におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-5937	2017-02-21 16:26	2016-11-17	Show	GitHub Exploit DB Packet Storm

196975	9.1	緊急 Network	トレンドマイクロ	-	Trend Micro Smart Protection Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2016-6269	2017-02-21 16:11	2016-08-8	Show	GitHub Exploit DB Packet Storm

196976	7.8	重要 Local	トレンドマイクロ	-	Trend Micro Smart Protection Server における root 権限で任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-6268	2017-02-21 16:11	2016-08-8	Show	GitHub Exploit DB Packet Storm

196977	8.8	重要 Network	トレンドマイクロ	-	Trend Micro Smart Protection Server の SnmpUtils における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-6267	2017-02-21 16:11	2016-08-8	Show	GitHub Exploit DB Packet Storm

196978	8.8	重要 Network	トレンドマイクロ	-	Trend Micro Smart Protection Server の ccca_ajaxhandler.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2016-6266	2017-02-21 16:11	2016-08-8	Show	GitHub Exploit DB Packet Storm

196979	9.8	緊急 Network	Exponent CMS project	-	Exponent CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2016-7400	2017-02-21 15:11	2016-09-13	Show	GitHub Exploit DB Packet Storm

196980	7.5	重要 Network	GNU Project	-	GNU Libiberty の demangler におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2016-6131	2017-02-21 15:11	2016-08-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221	-		-	-	Cognee thru v0.4.0 contains a critical remote code execution vulnerability in its notebook cell execution API endpoint. The endpoint is designed to execute arbitrary Python code provided by the user,… New	-	CVE-2026-31231	2026-05-13 03:16	2026-05-13	Show	GitHub Exploit DB Packet Storm

222	-		-	-	The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component (robustness_evaluation_fgsm_pytorch.py). The script uses the un… New	-	CVE-2026-31230	2026-05-13 03:16	2026-05-13	Show	GitHub Exploit DB Packet Storm

223	-		-	-	The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains an insecure deserialization vulnerability (CWE-502) in its Kubeflow component's model loading functionality. When loading model weights f… New	-	CVE-2026-31229	2026-05-13 03:16	2026-05-13	Show	GitHub Exploit DB Packet Storm

224	10.0	CRITICAL Network	-	-	Insufficient ownership checks in `clientarea.php` allow an authenticated client area user to submit requests using another user’s `addonId` without any ownership validation leading to unauthorized ac… New	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2026-29204	2026-05-13 03:16	2026-05-13	Show	GitHub Exploit DB Packet Storm

225	8.8	HIGH Network	-	-	Insufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitrary Perl code execution on behalf of the already authenticated account's system user. New	CWE-94 Code Injection	CVE-2026-29202	2026-05-13 03:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

226	4.3	MEDIUM Network	-	-	Insufficient input validation of the feature file name in `feature::LOADFEATUREFILE` adminbin call can cause arbitrary file read when a relative file path is passed. New	CWE-23 Relative Path Traversal	CVE-2026-29201	2026-05-13 03:16	2026-05-9	Show	GitHub Exploit DB Packet Storm

227	5.3	MEDIUM Adjacent	-	-	A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS T… New	CWE-416 Use After Free	CVE-2026-28994	2026-05-13 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

228	5.5	MEDIUM Local	-	-	This issue was addressed by adding an additional prompt for user consent. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, mac… New	CWE-284 Improper Access Control	CVE-2026-28993	2026-05-13 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

229	4.7	MEDIUM Local	-	-	A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS … New	CWE-362 Race Condition	CVE-2026-28992	2026-05-13 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm

230	7.5	HIGH Network	-	-	An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. An app may be able to cau… New	CWE-125 Out-of-bounds Read	CVE-2026-28991	2026-05-13 03:16	2026-05-12	Show	GitHub Exploit DB Packet Storm